65.49.20.124 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: The Shadow Server Foundation

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
proxy	VPN fraud	2023-04-03 13:08:01
attack	SSH break in attempt ...	2020-08-11 12:58:25
attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-15 03:05:02

Comments on same subnet:

IP	Type	Details	Datetime
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51
65.49.20.81	proxy	VPN	2022-12-27 13:51:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16096
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.124.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121401 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 03:04:58 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 124.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 124.20.49.65.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.144.216.70	attackbots	Bruteforce detected by fail2ban	2020-08-22 22:50:46
31.129.132.198	attack	Aug 22 14:13:55 db sshd[17436]: Invalid user Administrator from 31.129.132.198 port 53614 ...	2020-08-22 22:53:06
49.233.170.22	attackspambots	SSH login attempts.	2020-08-22 22:24:07
222.186.180.41	attackspambots	2020-08-22T14:32:19.322697vps1033 sshd[14985]: Failed password for root from 222.186.180.41 port 62858 ssh2 2020-08-22T14:32:22.278308vps1033 sshd[14985]: Failed password for root from 222.186.180.41 port 62858 ssh2 2020-08-22T14:32:26.295156vps1033 sshd[14985]: Failed password for root from 222.186.180.41 port 62858 ssh2 2020-08-22T14:32:29.547313vps1033 sshd[14985]: Failed password for root from 222.186.180.41 port 62858 ssh2 2020-08-22T14:32:32.543595vps1033 sshd[14985]: Failed password for root from 222.186.180.41 port 62858 ssh2 ...	2020-08-22 22:33:41
139.155.6.26	attackspambots	Aug 22 13:19:32 onepixel sshd[2840680]: Invalid user jmiguel from 139.155.6.26 port 60558 Aug 22 13:19:32 onepixel sshd[2840680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.6.26 Aug 22 13:19:32 onepixel sshd[2840680]: Invalid user jmiguel from 139.155.6.26 port 60558 Aug 22 13:19:34 onepixel sshd[2840680]: Failed password for invalid user jmiguel from 139.155.6.26 port 60558 ssh2 Aug 22 13:24:27 onepixel sshd[2841467]: Invalid user alok from 139.155.6.26 port 60300	2020-08-22 22:55:57
101.79.167.59	attackspam	Aug 22 14:14:30 serwer sshd\[32262\]: Invalid user transfer from 101.79.167.59 port 59958 Aug 22 14:14:30 serwer sshd\[32262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.79.167.59 Aug 22 14:14:33 serwer sshd\[32262\]: Failed password for invalid user transfer from 101.79.167.59 port 59958 ssh2 ...	2020-08-22 22:21:11
222.186.173.154	attack	2020-08-22T14:24:24.099642abusebot-2.cloudsearch.cf sshd[9944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2020-08-22T14:24:26.122824abusebot-2.cloudsearch.cf sshd[9944]: Failed password for root from 222.186.173.154 port 22892 ssh2 2020-08-22T14:24:29.789164abusebot-2.cloudsearch.cf sshd[9944]: Failed password for root from 222.186.173.154 port 22892 ssh2 2020-08-22T14:24:24.099642abusebot-2.cloudsearch.cf sshd[9944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2020-08-22T14:24:26.122824abusebot-2.cloudsearch.cf sshd[9944]: Failed password for root from 222.186.173.154 port 22892 ssh2 2020-08-22T14:24:29.789164abusebot-2.cloudsearch.cf sshd[9944]: Failed password for root from 222.186.173.154 port 22892 ssh2 2020-08-22T14:24:24.099642abusebot-2.cloudsearch.cf sshd[9944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ...	2020-08-22 22:39:50
49.232.16.47	attackspambots	Aug 22 10:01:24 ws12vmsma01 sshd[34237]: Invalid user spamd from 49.232.16.47 Aug 22 10:01:26 ws12vmsma01 sshd[34237]: Failed password for invalid user spamd from 49.232.16.47 port 47022 ssh2 Aug 22 10:07:03 ws12vmsma01 sshd[35057]: Invalid user pankaj from 49.232.16.47 ...	2020-08-22 22:35:12
54.224.126.175	attackspambots	Failed password for invalid user ncs from 54.224.126.175 port 59878 ssh2	2020-08-22 22:20:30
157.245.104.19	attackspam	SSH brute-force attempt	2020-08-22 22:18:18
51.210.14.10	attackspambots	SSH login attempts.	2020-08-22 22:30:14
106.52.55.146	attackbotsspam	Brute-force attempt banned	2020-08-22 22:52:17
92.222.77.8	attackbots	2020-08-22T13:12:42.127856shield sshd\[24191\]: Invalid user joel from 92.222.77.8 port 54936 2020-08-22T13:12:42.151014shield sshd\[24191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.ip-92-222-77.eu 2020-08-22T13:12:44.594288shield sshd\[24191\]: Failed password for invalid user joel from 92.222.77.8 port 54936 ssh2 2020-08-22T13:20:11.050279shield sshd\[26049\]: Invalid user tt from 92.222.77.8 port 38716 2020-08-22T13:20:11.068263shield sshd\[26049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.ip-92-222-77.eu	2020-08-22 22:29:54
47.74.44.224	attack	2020-08-22T15:36:49.482643+02:00 sshd[32702]: Failed password for invalid user marketing from 47.74.44.224 port 43212 ssh2	2020-08-22 22:42:56
162.142.125.57	attackbots	port scan and connect, tcp 9200 (elasticsearch)	2020-08-22 22:41:29

Recently Reported IPs

105.34.89.86	41.30.46.176	31.181.202.77	65.234.242.42
69.93.93.3	64.199.232.129	194.28.86.219	57.39.52.13
14.226.152.234	233.241.165.165	156.205.208.30	149.56.28.2
228.90.203.47	68.92.2.42	118.92.113.198	47.140.198.17
96.216.17.94	225.220.213.136	253.83.41.110	184.163.136.153